Spybot S&D Definition Updates from March 21 through April 11, 2007
World reknowned anti-spyware program - Spybot Search and Destroy - was updated with new spyware definition files. If you use this program be sure to run manual updates as soon as possible.
If you see a program listed in these detections by name you should assume that is is malware. All of the programs listed with a + sign are additions, or updated detections, and are dangerous to your computer, and/or personal security. Update your Spybot Search and Destroy definitions, then scan for and fix any malware that is detected.
After updating your Spybot S&D definitions, if they include new Immunization definitions you need to click on the Immunize button, then, if the status line tells you that additional immunizations are possible, click on the Immunize link, near the top of the program. It has a green + sign in version 1.4. If you don't do this the new immunizations against hostile ActiveX programs will not be applied.
2007-04-11
(These updates include detection and removal of the "Windows Safety Alert" parasite)
Adware
++Zango.AntiSpamBar ++Zango.Seekmo
Keylogger
+Perfect Keylogger (2) ++WideStep
Malware
++Free-Key-Logger +InetLoader +Smitfraud-C. (2) +SpyDawn +SpyHunter
++Win32.Agent.ahd ++Win32.Optix.b
Trojan
+1und1Bill.Fake +Hupigon +NumbSoft +Win32.Lager.aq ++Zlob.MovieBox +Zlob.PrivateVideo +WarezP2P
Total: 373599 fingerprints in 64879 rules for 2804 products.
2007-04-04
Keylogger
++A-Spy 2.11 ++Palsol ++CyberSpy ++AYOSpy
Malware
++AllInOneKeylogger +SpyDawn ++SpyLocked +Winsoftware.WinAntiVirusPro2006 +PestCapture +VirtuMonde
Trojan
+Zlob.VideoAccessActiveXObject ++Zlob.MovieCommander +Zlob.SiteTicket +Zlob.HQCodec +Zlob.PornPassManager +Zlob.VideoKeyCodec +Zlob.VideoBox +AnotherBot +Daugeru +Win32.Bancos.zm ++Banker.AHY ++Win32.Small.cnd
2007-03-28
Keylogger
+ActualSpy +IMSurfSentinel +Win32.ActiveKeyLogger
Malware
+Forbot +Smitfraud-C. +SpyHeal +SpyHunter +SpyDawn +Win32.Banload.bsr
PUPS
+SpyCQ
Security
+Microsoft.Windows.Security.FirewallOpenPorts
Spyware
+WebExplorer +WinSpy.SpySoftWareX +FreeKeylogger +EasyKeylogger
Trojan
+Banload +Nurech +Win32.Bagle.E +Win32.LowZones +Win32.Rbot +Win32.Bagle.av ++Win32.Bagle.hl +Zlob.SiteTicket +Zlob.AdultAccess +Zlob.VideoAccessActiveXObject +Zlob.VideoAccess +Banker.PorSMTP +Banker.PorSVC +Winsoftware.WinAntiVirusPro2007 +Win32.RAdmin
2007-03-21
Adware
+E-Ventures N.V.FWNToolbar
Malware
+AntiSpywareBOT +E-Ventures N.V.PCSkinsBrowser +Guptachar +PAL-Spyware-Remover +PSW.WOW +Smitfraud-C.Toolbar888 +Smitfraud-C. +SpyHeal +VirtuMonde
Trojan
+FakeBill +Nurech +Tibiabot +Win32.Bagle.flc +Win32.Bagle.hld ++Win32.Bagle.Rtk +Win32.Banker.anv +Win32.BHO.gen +Win32.Delf.uc +Win32.Delf.zq +Win32.Rbot +Win32.Small.edd ++Zlob.AdultAccess +Zlob.iCodec +Zlob.SiteTicket +Zlob.VideoAccessActiveXObject +Zlob.ZipCodec
English Language Company Links:
Spybot Search and Destroy English Home Page
Spybot Search and Destroy (Multi-Lingual Landing Page. Choose your language).
Spybot Search and Destroy Download page - Program and definition updates. You can download the latest version of Spybot S&D plus definition and tool updates here for inclusion later on.
Full tutorial about using and setting up Spybot Search and Destroy
Spybot Search and Destroy Update History
See all security program update notices in this catagory
A consequence of acquiring many of the parasites, keyloggers, hijackers and downloaders is that their files and startup settings are usually saved to your System Restore hidden folder, from whence they are automatically restored upon rebooting the computer. To completely remove these threats, and others, you should disable System Restore, then reboot, then clean all threats, then re-start System Restore, setting a new Restore Point, with a clean machine. Many people overlook this and are constantly reinfected after removing threats. There are few, if any security programs that can clean or remove infected files that are backed up in your protected System Restore directory.
To disable System Restore, go to My Computer and right-click on it's icon. From the flyout options select Properties. From the "System Properties" select the "System Restore" tab. There you will find a checkbox labeled "Turn off System Restore." Check it, then click Apply and wait while the System Restore files are deleted (takes some time). After the deletions are finished, click OK to close the Properties box, then reboot.
When you have thoroughly removed all infections follow the same procedure as above, unchecking the box that turned off System Restore.
If you like this article please share it.
The content on this blog may be reprinted provided you do not modify the content and that you give credit to Wizcrafts and provide a link back to the blog home page, or individual blog articles you wish to reprint. Commercial use, or derivative work requires written permission from the author.